Pi-Hole < 432 Command Injection & PrivEsc (CVE-2019-13051) Pi-Hole version 432 contains a patch to this vulnerability: pi-hole/web#974 A big thanks to the Pi-Hole dev team for their awesome project and for making it so easy to report this vulnerability! Executive Summary It is possible to remotely gain root access on the RaspberyPi device (or whichever device